Kernel security flaw??

Karl Larsen k5di at zianet.com
Sun Feb 24 22:00:08 UTC 2008


geoffrey froner wrote:
> I saw the following report at the Gentoo site.  Not being an expert with
> Linux, I am at a loss to understand the impact.  Is this something Ubuntu
> users need be concerned?  Is there already a patch for this problem?
>
> "Two *major security flaws in the Linux kernel* were reported last weekend.
> Both flaws have the same impact (*root access for local users*) and both
> exist within the vmsplice() system call, which was added to the kernel in
> 2.6.17. There is no configuration option to exclude vmsplice() so *everyone
> is vulnerable."
>
> TIA
>
> Geoffrey
> *
>
>   
    Well this is a problem since if someone can get on your computer 
they can ruin it. I know from experience that a simple user password can 
be used by a ssh user to get access to my computer. Now my password for 
user karl is not simple.

    If you have a simple password for your user login, change it to a 
good one like wq2TyFg.

Karl


-- 

	Karl F. Larsen, AKA K5DI
	Linux User
	#450462   http://counter.li.org.
   PGP 4208 4D6E 595F 22B9 FF1C  ECB6 4A3C 2C54 FE23 53A7





More information about the ubuntu-users mailing list